Oval Definition:	oval:org.opensuse.security:def:68053
Revision Date: 2021-09-16 Version: 1 Title: Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP1) (Important) Description: This update for the Linux Kernel 4.12.14-197_75 fixes several issues. The following security issues were fixed: - CVE-2021-3653: Fixed missing validation of the KVM `int_ctl` VMCB field that would have allowed a malicious L1 guest to enable AVIC support for the L2 guest (bsc#1189420). - CVE-2021-3656: Fixed KVM nSVM nested VMLOAD/VMSAVE interception (bsc#1189418). - CVE-2021-38198: Fixed KVM MMU to use the correct inherited permissions to get shadow page (bsc#1189278). Family: unix Class: patch Status: Reference(s): 1189278 1189418 1189420 985657 CVE-2009-0696 CVE-2009-4022 CVE-2010-3613 CVE-2010-3614 CVE-2010-3615 CVE-2011-0414 CVE-2011-1907 CVE-2011-1910 CVE-2011-2464 CVE-2011-4313 CVE-2012-1667 CVE-2012-3817 CVE-2012-3868 CVE-2012-4244 CVE-2012-5166 CVE-2012-5688 CVE-2012-5689 CVE-2013-2266 CVE-2013-4854 CVE-2014-0591 CVE-2014-3214 CVE-2014-3859 CVE-2014-8500 CVE-2014-8680 CVE-2015-1349 CVE-2015-4620 CVE-2015-5477 CVE-2015-5722 CVE-2015-5986 CVE-2015-8000 CVE-2015-8461 CVE-2015-8704 CVE-2015-8705 CVE-2016-1285 CVE-2016-1286 CVE-2016-2088 CVE-2016-2775 CVE-2016-2776 CVE-2016-3189 CVE-2016-8864 CVE-2016-9131 CVE-2016-9147 CVE-2016-9444 CVE-2016-9778 CVE-2017-3135 CVE-2017-3137 CVE-2017-3138 CVE-2017-3140 CVE-2017-3141 CVE-2017-3142 CVE-2017-3143 CVE-2017-3145 CVE-2021-3653 CVE-2021-3656 CVE-2021-38198 SUSE-SU-2019:1206-2 Platform(s): SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information bind-9.11.2-12.8 is installed OR bind-chrootenv-9.11.2-12.8 is installed OR bind-doc-9.11.2-12.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information bzip2-1.0.6-5.3 is installed OR libbz2-1-1.0.6-5.3 is installed OR libbz2-1-32bit-1.0.6-5.3 is installed OR libbz2-devel-1.0.6-5.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND kernel-livepatch-4_12_14-197_75-default-11-2.2 is installed
BACK